Smart KYC with Gemini Enterprise: mid-size bank case (from 4h to 12 min)

TL;DR A mid-size bank (R$ 12B portfolio) deployed a KYC pre-analysis agent in Gemini Enterprise in 90 days. Average analysis time dropped from 4h to 12 min, unit cost from R$ 180 to R$ 14, and the team processes 3× the volume without headcount growth. BACEN approved after architecture review.

KYC (Know Your Customer) is the regulatory process Brazilian banks use to validate identity, financial capacity and risk profile. Required by BCB Resolution 119/2021 and Circular 3,978/2020. When done manually, it is expensive: document reading, base cross-referencing, adverse media analysis, risk classification.

This post details how we built the agent that automated this process at a mid-size Brazilian bank. Client name is under NDA — the numbers are real.

Before: the starting point

Compliance analysts
dedicated to corporate KYC

Average time/analysis
7 systems consulted

18%

Rework rate
Actual SLA: 7–12 days

The problem wasn't lack of people — it was process. Each analysis involved 7 different systems (Federal Revenue, Serasa, Sintegra, Detecta, adverse media, articles of incorporation, internal system). Chronic backlog of ~800 pending analyses.

Agent architecture

The agent was built in Gemini Enterprise Plus (US$ 39/user/month, with custom tools and Vertex AI Agent Builder access).

Multimodal ingest: articles of incorporation PDF, partner IDs, address proof, revenue. Gemini 2.5 Pro extracts structured data (CNPJ, partners, share capital, activity, address).
Query tools:
- Federal Revenue (active CNPJ, registration status, partner structure).
- Serasa (corporate score and individual partners).
- Sintegra (state status).
- PEP and sanctions list (internal + Central Bank).
- Adverse media (structured search with temporal filters).
Reasoning: Gemini 2.5 Pro orchestrates tools, builds the dossier, identifies inconsistencies (share capital vs revenue, partner with restriction, activity vs history).
Risk classification: agent suggests low/medium/high with per-criterion justification citing evidence.
Output: structured PDF dossier + entry in the internal system + alerts for the human analyst.

⚠️ The agent does NOT approve Critical design decision: the agent delivers the ready dossier and the analyst decides. This meets BACEN's requirement for human final decision in onboarding and simplifies the DPIA.

Results at 90 days

Metric	Before	After	Delta
Average time/analysis	4 h	12 min	−95%
Cost per analysis	R$ 180	R$ 14	−92%
Actual SLA	7–12 days	1–2 days	−80%
Volume/month	~600	~1,800	3×
Headcount	24	24	0 (reallocation)
Rework	18%	4%	−78%
Internal NPS (analysts)	32	71	+39 pts

The NPS result was a surprise. Analysts who feared replacement became fans: work shifted from copy-paste to critical analysis on a ready dossier.

BACEN governance: what had to be ready

Documented human final decision in each case.
Full audit log: who asked what, which tools were called, which documents consulted, which recommendation was made, who approved.
Data residency in sa-east1 and training opt-out.
Detailed DPIA with risk matrix (template in DPIA for Gemini Enterprise projects).
Continuity plan: if the agent goes down, the manual process resumes without disruption.
Quarterly bias assessment: monthly sample of 100 analyses comparing agent vs human decision.

What went wrong along the way

Error 1: generic OCR for scanned contracts

First pilot failed on 22% of old contracts. We migrated to Gemini 2.5 Pro multimodal directly on PDF — error rate dropped to 2%.

Error 2: unanchored prompt

Agent "hallucinated" classifications when the legal basis didn't cover the case. We rewrote it requiring: "if the rule for this case isn't in the attached criteria document, classify as 'requires human review' — don't invent". Verifiable hallucination → zero.

Error 3: adverse media without temporal window

Agent was treating 2009 news with the same relevance as 2026 news. Added a temporal filter (last 3 years default, 7 years for partners with restriction) and severity ranking.

Error 4: we underestimated change management

The team resisted in the first 2 weeks — saw it as a threat. Solved with a hands-on workshop: each analyst used the agent on real cases under supervision. The turn came when they saw that "saved" time became more interesting work (complex fraud analysis, in-depth analysis).

Project cost

Item	Value
Gemini Enterprise Plus (30 lic × US$ 39)	~R$ 6,500/month
Vertex AI (models + queries)	~R$ 8,000/month
Tools (Federal Revenue, Serasa, media)	~R$ 12,000/month
Cloud Run + storage + logs	~R$ 1,500/month
Total operating	~R$ 28,000/month
Autenticare implementation (one-time)	R$ 320,000 (90 days)

Direct savings: 1,800 analyses × R$ 166 = R$ 298,800/month. Payback: ~5 weeks after go-live. Calculate your scenario with the ROI calculator.

Replicability

The pattern repeats in any process with (a) high volume, (b) clear but multiple rules, (c) consultation with several systems, (d) final decision that admits human review. We've already applied it to financial reconciliation, credit analysis and supplier onboarding.

Financial accelerator

Does your KYC/onboarding process fit this pattern?

30-minute diagnostic: volume, systems consulted, current SLA. We leave with an ROI estimate and a 90-day plan.

Schedule diagnostic → Financial accelerator